Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

104 matches found

Positive Technologies
Positive Technologiesadded 2024/06/27 12:0 a.m.5 views

PT-2024-36813

Name of the Vulnerable Software and Affected Versions CPython versions 3.9 and earlier Description The issue arises from configuring an empty list for SSLContext.set npn protocols, which is an invalid value for the underlying OpenSSL API, resulting in a buffer over-read when NPN is used. This is...

9.4CVSS8AI score0.05582EPSS
Exploits17References144
Amazon
Amazonadded 2024/05/03 12:0 a.m.2 views

Medium: python3.9

Issue Overview: An issue was found in the CPython zipfile module affecting versions 3.12.2, 3.11.8, 3.10.13, 3.9.18, and 3.8.18 and prior. The zipfile module is vulnerable to "quoted-overlap" zip-bombs which exploit the zip format to create a zip-bomb with a high compression ratio. The fixed...

6.2CVSS6.7AI score0.00333EPSS
Exploits0
OSV
OSVadded 2024/03/28 5:56 p.m.3 views

CLSA-2024-1711648611 python3.9: Fix of CVE-2023-27043

CVE-2023-27043: reject malformed addresses in email.parseaddr...

5.3CVSS6.8AI score0.02507EPSS
Exploits1References1
Amazon
Amazonadded 2023/09/07 12:0 a.m.3 views

Important: python3.9

Issue Overview: An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primarily affects servers such as HTTP servers that use TLS client authentication. If a TLS server-side socket is created, receives data into the socket buffer...

5.3CVSS7.9AI score0.0079EPSS
Exploits0
Rows per page
Query Builder